SQL Injection Vulnerability in Comay RAS System

The Comet RAS system is a system that provides organizations with a centralized method of managing remote access to applications from a central point. A SQL injection vulnerability exists in the Comay RAS system. An attacker could exploit the vulnerability to gain access to sensitive database...

SQL Injection Vulnerability in Hode-soft System

Nanjing Hidi METEX Software Co., Ltd. is an outstanding enterprise with application software and quality service, jointly invested by Hidi Investment Corporation and Canada METEX Corporation, a new joint-stock private enterprise focusing on high-quality, humanized application software development...

TCCMSV9.0 Latest Version SQL Injection Vulnerability

TCCMS is a content management system. TCCMSV9.0 has multiple SQL injection vulnerabilities in app/controller/news.class.php, which can be exploited by attackers to either obtain sensitive database information...

Information disclosure

IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x before 7.0.0.8 IF2 allows local users to obtain sensitive database information via unspecified vectors...

CVE-2015-0200

IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x before 7.0.0.8 IF2 allows local users to obtain sensitive database information via unspecified vectors...

Multiple SQL Injection Vulnerabilities in Fiyo CMS

Fiyo CMS is small business phone service and mobile collaboration tool. Fiyo CMS has multiple SQL injection vulnerabilities. The vulnerabilities can be exploited by an attacker to gain access to sensitive database information...

Authentication flaw

BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS 3000 through R3.09.50 and CENTUM VP through R4.03.00 and R5.x through R5.04.00, and Exaopc through R3.72.10, does not require authentication, which allows remote attackers to read arbitrary files via a RETR operation, write to...

Authentication flaw

IBM Tivoli Application Dependency Discovery Manager TADDM 7.2.0.0 through 7.2.0.10, 7.2.1.0 through 7.2.1.6, and 7.2.2.0 through 7.2.2.2 does not require TADDM authentication for rptdesign downloads, which allows remote authenticated users to obtain sensitive database information via a crafted UR...

IPBProArcade 2.5 - Remote SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11719/info A remote SQL injection vulnerability reportedly affects ipbProArcade. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in an SQL query. An attacke...

Blue Hat Sensitive Database Disclosure Vulnerability SQLi

No description provided by source. +Exploit Title: Powered by Blue Hat Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 12.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:Powered by Blue Hat + Category : Web Apps SQli Choose any site that comes u...

KievShina Designs SQL Injection

+Exploit Title: KievShina Designs Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 16.6.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:"Designed KievShina.com" inurl:g.php + Category : Web Apps SQli...

PEEL Open e-commerce systems Sensitive Database Disclosure Vulnerability

Exploit for php platform in category web applications +Exploit Title: PEEL Open e-commerce systems Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + dork : inurl:"lire/index.php?rubid=" + Category : Web Apps SQli...

SE Software Technologies Sensitive Database Disclosure

Exploit for php platform in category web applications +Exploit Title: SE Software Technologies Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + dork : intext:"Powered By : SE Software Technologies" filetype:php + Category : Web Apps SQli...

Cook Media Web Development Group Sensitive Database Disclosure

Exploit for php platform in category web applications +Exploit Title: Cook Media Web Development Group Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 27.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:"Cook Media Group, LLC." inurl:"php?script=...

Cook Media Web Development Group SQL Injection

+Exploit Title: Cook Media Web Development Group Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 27.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:"Cook Media Group, LLC." inurl:"php?script=" + Category : Web Apps SQli...

Realmarketing CMS SQL Injection

+Exploit Title: Realmarketing CMS System Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 22.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:realweb.de inurl:default.php + Category : Web Apps SQli Choose any site that comes up when you enter the...

Realmarketing CMS - Multiple SQL Injections

Realmarketing CMS - Multiple SQL Injections +Exploit Title: Realmarketing CMS System Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 22.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:realweb.de inurl:default.php + Category : Web Apps SQli Choos...

Blue Hat Sensitive Database Disclosure SQLi Vulnerability

Exploit for php platform in category web applications +Exploit Title: Powered by Blue Hat Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 12.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:"Powered by Blue Hat" + Category : Web Apps SQli Choose...

Blue Hat - Sensitive Database Disclosure SQL Injection

Blue Hat - Sensitive Database Disclosure SQL Injection +Exploit Title: Powered by Blue Hat Sensitive Database Disclosure Vulnerability +Author : ^Xecuti0n3r + Date : 12.04.2011 + Hour : 13:37 PM + E-mail : xecuti0n3ryahoo.com + dork : intext:"Powered by Blue Hat" + Category : Web Apps SQli Choose...

[Full-disclosure] [DSF-02-2009] - Zoki Catalog SQL Injection

Ref. DSF-02-2009 - Zoki Catalog SQL Injection Vendor: Zoki Soft www.zokisoft.com Status: Patched by vendor Original advisory: http://www.davidsopas.com/2009/06/15/zoki-catalog-sql-injection/ Zoki Catalog Smart Catalog is unique and convenient software. It is designed for many purposes whether you...